STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must alert the system administrator (SA) and information system security officer (ISSO) (at a minimum) in the event of an audit processing failure.

DISA Rule

SV-82755r2_rule

Vulnerability Number

V-68265

Group Title

SRG-APP-000108-MFP-000154

Rule Version

SRG-APP-000108-MFP-000154

Severity

CAT II

CCI(s)

• CCI-000139 - The information system alerts designated organization-defined personnel or roles in the event of an audit processing failure.

Weight

10

Fix Recommendation

Configure the Mainframe Product to alert system programmers or security administrators in the event of audit processing failure.

Check Contents

If the Mainframe Product does not perform audit data management or storage function, this is not applicable.

Examine configuration settings.

Determine if Mainframe Product alerts system programmers or security administrators in the event of audit processing failure. If it does not, this is a finding.

Vulnerability Number

V-68265

Documentable

False

Rule Version

SRG-APP-000108-MFP-000154

Severity Override Guidance

If the Mainframe Product does not perform audit data management or storage function, this is not applicable.

Examine configuration settings.

Determine if Mainframe Product alerts system programmers or security administrators in the event of audit processing failure. If it does not, this is a finding.

Check Content Reference

M

Target Key

3061

Comments